Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFE0E7DE039111EF9EE8F001017001B1.roa
File: FFE0E7DE039111EF9EE8F001017001B1.roa (raw, json)
Hash identifier: +ebThCyNR0qDq0OLF2AUWfhgPM7KYMNoJ9obNAeR4mw=
Subject key identifier: F9:26:9D:EE:E2:C1:FA:92:55:3F:CC:6E:62:6E:8C:2A:95:B0:8F:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B188
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFE0E7DE039111EF9EE8F001017001B1.roa
Signing time: Fri 26 Apr 2024 05:58:27 +0000
ROA not before: Fri 26 Apr 2024 05:58:24 +0000
ROA not after: Sun 05 May 2024 05:58:24 +0000
asID: 139646
IP address blocks: 154.204.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45448 (0xb188)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 05:58:24 2024 GMT
Not After : May 5 05:58:24 2024 GMT
Subject: CN=662b4283-f1c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:17:77:86:4f:bf:8f:fe:bf:e9:9f:68:cb:4f:
04:45:96:c5:e9:6e:70:70:07:58:85:0c:4a:08:34:
9b:72:14:44:03:15:9b:df:d0:a1:fa:57:74:5c:66:
4e:37:6f:c4:d7:2c:28:bd:3d:dc:d5:f9:d2:7f:3c:
6e:d9:7c:ef:83:e2:dc:21:28:71:70:5e:3b:7e:dc:
36:83:33:8b:ce:14:a7:b9:0e:29:a6:be:4f:20:18:
9e:6c:cc:15:ef:66:78:a0:f0:ff:b0:5f:34:18:8f:
88:6b:21:20:ac:7c:63:a4:1e:94:84:cb:f7:a6:f2:
51:2e:b8:1f:03:ab:97:5c:bd:53:0d:50:9d:27:2c:
86:4f:bb:0c:5f:0d:08:4b:bc:e0:29:bd:53:eb:aa:
9b:b0:a8:1b:b0:a1:f6:64:b5:ef:93:be:8e:01:6d:
aa:70:28:57:dd:c4:f2:7d:0a:a9:6a:35:11:7c:46:
5c:6b:69:d3:e5:a4:04:d5:5b:da:68:04:fc:04:bd:
67:2f:10:d7:32:43:1e:46:43:73:a7:a1:04:41:ef:
ef:03:8d:90:35:c5:b5:c5:10:4e:74:56:de:21:4a:
37:a8:cc:e3:e7:eb:54:03:21:b6:54:48:97:11:6a:
d0:50:07:be:65:a8:0d:fc:b2:08:b8:d5:a6:cb:ab:
22:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:26:9D:EE:E2:C1:FA:92:55:3F:CC:6E:62:6E:8C:2A:95:B0:8F:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFE0E7DE039111EF9EE8F001017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.0.0/24
Signature Algorithm: sha256WithRSAEncryption
55:d2:16:61:0e:e5:86:75:fa:64:45:71:26:fa:bd:63:e4:2e:
fa:f7:6a:60:40:87:f3:fe:4b:59:28:ee:88:a7:56:ae:1d:40:
87:24:1d:aa:f9:61:08:e9:1b:c7:64:25:f4:4c:70:69:aa:05:
f9:6f:a3:aa:10:56:ea:7d:1f:6b:04:d5:81:2d:94:71:06:96:
9c:6e:c8:0f:3c:32:53:3a:3c:f8:5a:88:13:28:ca:5a:ec:cc:
3c:90:b5:58:9e:26:6f:2f:8f:20:6d:5d:80:cc:29:f0:ae:70:
dd:71:bc:f3:55:54:1d:07:b8:88:07:f1:ec:1a:b5:6d:60:2f:
51:e7:b8:80:41:94:ae:55:65:99:7d:6c:67:29:f9:8e:b0:70:
06:d0:da:6d:6e:cd:43:c3:ac:d2:99:34:de:cf:f3:9d:3b:8f:
06:e9:86:37:57:14:95:77:32:41:6a:93:d4:c1:62:f1:14:fd:
c7:3e:66:0f:1d:b3:39:74:58:83:0e:a5:ad:c5:04:3d:08:4d:
63:85:bd:f7:a9:5c:5d:49:90:53:f0:9a:ec:9a:f9:c8:bb:d7:
3d:d8:b1:9d:60:3c:3a:48:15:f5:b6:c0:18:85:8e:d7:e2:d5:
f4:14:05:c6:36:7c:78:35:46:45:d0:e8:7a:75:02:5d:31:74:
4d:7d:bf:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 03:11:10 2024 by rpki-client on console-fra.rpki-client.org